+386 4 513 0116
Click here for more information about cookies.
This Policy applies to any personal data processing (use) by the company Odeja d.o.o. (controller) or performed on behalf of the controller.Odeja d.o.o. safeguards your personal data by acting in accordance with the regulation and legislation (basis: Personal Data Protection Act – ZVOP-2, Official Gazette of the Republic of Slovenia, no. 136/22, and General Data Protection Regulation – GDPR, effective date 25 May 2018).
The controller of personal data, as defined by the EU General Data Protection Regulation and applicable legislation governing personal data protection (GDPR), is:
Odeja d.o.o.Kidričeva 80Škofja LokaSloveniaRegistration number: 2274914000Telephone no.: +386 4/51-30-150Email: firstname.lastname@example.org
The controller can be reached by email at email@example.com or by telephone at 04 51 30 155 (Monday to Friday, 8 am to 4 pm).
2. Which personal data do we process
3. Your personal data is collected for the following purposes:
4. Data processing is based on:
5. Personal data storage period
We store basic personal data for an unlimited period as long as you have a status of a registered user on our website or until you withdraw your consent.
We will process your personal data until you delete your user account. We reserve the right to delete your user account in case of prolonged inactivity or use of the platform in violation of its terms and conditions of use or provisions of applicable regulations. We will inform you about this in advance, and the data will be deleted within 14 days from the date of deletion of the user account. Despite the deletion of the user account, we can continue to process personal data as long as we have a valid legal basis, such as our overriding legitimate interest.
The duration of storage of your personal data may depend on the purpose of data processing, i.e. until the purpose is fulfilled. When data is processed for the purpose of performance of a contract concluded with you, or as a result of your order, request, or inquiry, the data is kept as long as it is necessary for the performance of the contract, the delivery of goods or the provision of services. Contact information may be stored longer for direct marketing purposes to the extent permitted by law.
Personal data may be stored even after the purpose of its processing has been fulfilled, until the expiration of the applicable statute of limitations, if further storage is necessary for the processing of legal claims, or longer, if a longer storage period is necessary for the fulfillment of a legal obligation or a decision of a competent authority. Data obtained for the purpose of sending e-news and offers will be stored until you withdraw your consent. After the specified periods, personal data will be anonymized or deleted.
6. Freely given data
Personal data is given freely. You are not obligated to provide your personal data; however, if you do not provide your personal data, we cannot conclude a contract (since we need the data for the delivery of your ordered goods).
7. Who has access to your personal data
We do not share or give access to your personal data to any third parties (outside company Odeja d.o.o.), except those contractual partners that perform certain services for us regarding data processing, and which are obligated to act in accordance with the legislation governing personal data processing and protection (i.e. contractual processors). Contractual processors that receive personal data from us:
Contractual processors can process personal data exclusively in accordance with our instructions and cannot process personal data for their own purposes. Together with their employees, they are obligated to protect the confidentiality of your personal data. All submitted information is therefore protected against any third-party access, allowing users to conduct their business with Odeja d.o.o. without worries or interruptions.
The provider respects privacy and is obligated to act with due diligence and in accordance with applicable regulations on personal data protection when collecting, storing, and processing personal data. The provider is not liable for the accuracy of data listed by the user upon registration in the online store.The user also bears responsibility for protecting their personal data, specifically by ensuring the security of their username and password and with appropriate software (antivirus) protection of their computer.For security purposes, we also collect data IP addresses of users accessing and using the Odeja online store at www.odeja.si.
- every user on Odeja d.o.o. website, on first and every subsequent visit; and
- every person that submits their personal data in any form to the company.
Personal data submitted during an order/subscription to e-news is processed with your clear and unambiguous consent, based on Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR). For the purpose of improving the quality of our products and services, as well as for statistical purposes related to email messages sent, we also process data on received messages opened and clicks on links in received messages.
You give your consent to personal data processing by entering your e-mail address on Odeja.si website on the online order form or in the "Stay in touch" link. You can withdraw your consent at any time by clicking "You can always unsubscribe or change your personal information", located in the footer of every message received from Odeja.si, or by sending an email to firstname.lastname@example.org. In the event of withdrawal of consent, we will no longer use your personal data for notifications on Odeja.si content. A withdrawal of consent has no effect on the legality of consent-based data processing before the withdrawal.
10. Your rights related to personal data
You have the following right regarding your data:
11. Procedure for exercising your rights
At any time, you can send a written request regarding your rights related to personal data to email@example.com.
For the purposes of reliable identification in the event of exercising rights related to personal data, we can request additional data; we can only refuse to act if we can prove that we cannot reliably identify you.
We are obligated to respond to any request regarding your rights to personal data without undue delay and no later than one month after receiving your request.
Updated: 6 June 2023